15m-ops-break icon indicating copy to clipboard operation
15m-ops-break copied to clipboard

Published 20 hours ago verified publisher icon nukemberg

Networking in the cloud & k8s era/space

Open hilafish opened this issue 4 years ago • 4 comments

Hi,

Would love it if you could create an episode about networking in the cloud - debugging, useful tools, and how it differs from "old times". Also, networking in k8s - how it works, what to do/try when defining IP masquerade is not enough, and how the hell to debug stuff when containers are running alpine and no root so you don't have any curl/telnet/ping and other useful commands in the container and you can't install it either.

hilafish avatar Jun 05 '21 17:06 hilafish

yeh that's a good one, but lots of ground to cover. thinking out loud, maybe do a series:

  1. modern networking intro - architecture, etc
  2. NAT
  3. Routed floating IPs
  4. overlay networks and meshes Other than that an episode about attaching a debugging container to a pod. so 5 episodes total. wdyt?

nukemberg avatar Jun 05 '21 21:06 nukemberg

These 5 episodes sound great, just two more things:

  • Where DNS peering comes into play in this?
  • On troubleshooting - any ground rules as to when it's an issue on proxy's IP tables (when k8s pods' traffic are supposed to go out via a proxy)? when is it scoped to k8s space and when it is out of k8s, and on the cloud provider (DNS peering, FWs, etc)?

hilafish avatar Jun 12 '21 18:06 hilafish

"DNS peering" is a GCP specific concept afaict. Probably better to cover DNS forwarding and K8s DNS in general. TBH I'm going to give anything which is K8s specific lower priority because: a. I fucking hate K8s, b. I want to concentrate on general things as they have more impact. But if I have time, sure.

nukemberg avatar Jun 13 '21 01:06 nukemberg

Fair enough :)

hilafish avatar Jun 15 '21 21:06 hilafish